Hidden Malware in fake Browserify NPM package for Linux and MAC

April 13, 2021

This week, a new malicious package was discovered on the npm registry that targets NodeJS developers using Linux and Apple macOS.

The malicious package is called ““web-browserify,”” and imitates the popular Browserify npm component downloaded over 160 million times over its lifetime. And performs extensive reconnaissance activities on an infected system.

Read More…